Jayjayjazz

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 152 Firefox ESR versions prior to 140.12 Firefox ESR versions prior to 115.37 Thunderbird versions prior to 152 Thunderbird versions prior to 140.12 **Description** A memory safety bug exists in the software, which could lead to unexpected behavior or crashes due to improper memory management. **Recommendations** Update Firefox to version 152. Update Firefox ESR to version 140.12. Update Firefox ESR to version 115.37. Update Thunderbird to version 152. Update Thunderbird to version 140.12.

**Name of the Vulnerable Software and Affected Versions** Firefox versions prior to 147.0.4 Firefox ESR versions prior to 140.7.1 Firefox ESR versions prior to 115.32.1 Thunderbird versions prior to 140.7.2 Thunderbird versions prior to 147.0.2 **Description** A heap buffer overflow exists in the libvpx VP8/VP9 video codec path. This issue could be triggered by crafted media, potentially leading to memory corruption and remote code execution. The vulnerability affects global browser users. The issue is related to the `libvpx` library and specifically impacts the VP9 video processing functionality. **Recommendations** Update Firefox to version 147.0.4 or later. Update Firefox ESR to version 140.7.1 or later. Update Firefox ESR to version 115.32.1 or later. Update Thunderbird to version 140.7.2 or later. Update Thunderbird to version 147.0.2 or later.